Security Advisory

CVE-2016-5255

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-08-05 01:00:00

Last updated 2024-08-06 00:53:48

Assigner mozilla

State PUBLISHED

Description

Use-after-free vulnerability in the js::PreliminaryObjectArray::sweep function in Mozilla Firefox before 48.0 allows remote attackers to execute arbitrary code via crafted JavaScript that is mishandled during incremental garbage collection.

← Browse all CVEs View on cve.org ↗